[jenkinsci/jenkins] ac2b8f: Update stapler version to 1.260

Mark Waite Mon, 22 Jun 2020 14:28:03 -0700

  Branch: refs/heads/master
  Home:   https://github.com/jenkinsci/jenkins
  Commit: ac2b8f469522f7f94cf1501413aa18ebf13cf894
      
https://github.com/jenkinsci/jenkins/commit/ac2b8f469522f7f94cf1501413aa18ebf13cf894
  Author: Rahul Somasunderam <[email protected]>
  Date:   2020-06-19 (Fri, 19 Jun 2020)


  Changed paths:
    M bom/pom.xml

  Log Message:
  -----------
  Update stapler version to 1.260

stapler 1.259 depends on dom4j-2.1.1 which is affected by CWE-611.
The vulnerability cannot be exploited in Jenkins, however will trip up 
dependency scanning tools.
This change bumps stapler to 1.260.


  Commit: d4690b20f9dc170f7657c6b36df2c0d48a217ebe
      
https://github.com/jenkinsci/jenkins/commit/d4690b20f9dc170f7657c6b36df2c0d48a217ebe
  Author: Mark Waite <[email protected]>
  Date:   2020-06-22 (Mon, 22 Jun 2020)

  Changed paths:
    M bom/pom.xml

  Log Message:
  -----------
  Merge pull request #4813 from rahulsom/SECURITY-1929

[JENKINS-61438] - Update Stapler version from 1.259 to 1.260


Compare: 
https://github.com/jenkinsci/jenkins/compare/461c3106224b...d4690b20f9dc

-- 
You received this message because you are subscribed to the Google Groups 
"Jenkins Commits" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/d/msgid/jenkinsci-commits/jenkinsci/jenkins/push/refs/heads/master/461c31-d4690b%40github.com.

[jenkinsci/jenkins] ac2b8f: Update stapler version to 1.260

Reply via email to